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A COMPUTERIZED METHOD AND SYSTEM 
FOR MANAGING THE EXCHANGE AND 
DISTRIBUTION OF CONFIDENTIAL DOCUMENTS 

SPECIFIC DATA RELATED TO INVENTION 

This application claims the benefit of the filing date of provisional 

patent application, U.S. Serial No. 60/131,036, filed April 26, 1999. 

BACKGROUND OF THE INVENTION 

The present invention concerns generally a process and system for 
enabling electronic transmission and reception of confidential documents 
over a global communication network such as the Internet and more 
particularly to a method and system for distributing electronic documents 
5 containing sensitive information or data to selected entities, to a method 
and system for notifying intended recipients of the availability of such 
documents and to a method and system for tracking access, downloading 
and uploading of such documents. 

People and businesses have become aware of the communication 

10 potential of the "Internet", sometimes referred to as a "global 
communications network", a digital communications network which 
enables a connection between computers worldwide. Unfortunately, 
security on the Internet remains imperfect, particularly since one of the 
Internet's design goals - an ability to route communications around 

15 damage to any node -- makes it difficult to know or control the path by 
which any particular message will travel to reach its intended recipient, 
and who else will have access to it along the way. Even supposedly secure 



transmissions of data such as credit card information has been intercepted 
by "hackers". 

Network software known as "group ware such as "Lotus Notes/' 
running on a computer network within a company (a "private network" or 
5 "intranet"), permits individuals who have access to that particular network 
to work together efficiently by sharing documents, and editorial revisions 
to shared documents such as document updates, "redlined" revised drafts, 
and comments, as well as e-mail to create conference room collegiality and 
efficiency among employees actually separated in time and/or space 

10 without the security risks associated with the global network or Internet. 
However, there is still no entirely satisfactory way for people at different 
companies or other entities to have the benefits of private network 
security, particularly for ad hoc alliances, i.e., different sets of entities 
coming together to function as one mega or meta entity, for the duration of 

15 some particular project. In such a case, the time and expense of actually 
wiring a network between two or more companies or other entities and 
agreeing on one common software package or standard presents a barrier 
to conventional network solutions. Simply using the Internet remains 
imperfectly secure for transmission of confidential information without 

20 some pre-arranged encryption and present methods for pre-arranging 
secure encryption processes have been cumbersome and unproductive. 
Thus, there is a yet-unsolved problem of permitting different groups of 
companies or other entities to communicate securely over a global network 
for different projects, to quickly and inexpensively obtain the benefits of 

25 secure groupware in connection with each project, and to be able to add 
and drop entities without difficulty with respect to any particular project. 
For example, in the banking industry, ad hoc syndicates are formed under 
the leadership of one or more lead banks to permit a number of agent or 
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associate banks to participate in a major loan to a borrower. Such loans 
have become more common and may involve loans in excess of one billion 
dollars. Syndication of such large loans is used since any one bank is not 
prepared to lend such a large amount to a single customer. 
5 Conventionally, proposed terms of a loan are negotiated between the 
borrower and the lead banks, each in consultation with its advisors such as 
legal counsel, public-relations consultants, accountants and insurance 
carriers. In some instances, some advisors may be in-house advisors as 
employees of a given entity and thus constitute an internal team. However, 

10 the advisors in many instances may be independently associated with 
external entities such as law firms or major accounting firms and thus 
constitute either external teams or combinations of the above. The lead 
bank(s) negotiates with the borrower to arrive at terms and conditions for 
the loan, such as the interest rate, repayment schedule, security and the 

15 bank's fee for processing and syndicating the loan. The lead bank may 
agree to underwrite the entire loan in which case the lead bank uses 
syndication to create sub-loans between it and other banks to raise the 
funds for the loan. All of these transactions require management of 
voluminous amounts of documentation, most of which is confidential and 

20 whose disclosure could result in huge damages to the borrower or lenders. 
Thus, it would be desirable to provide a system which enables secure 
document transmission between users over a global communication 
network without requiring the users to communicate in advance to 
establish an encryption method. 

25 

SUMMARY OF THE INVENTION 

In general, the present invention provides a method and apparatus 
for enabling secure transmission of documents between multiple senders 



and receivers. More particularly, the invention includes a secure data 
storage facility and a computer program operable at such facility for 
enabling reception, storage and transmission of securely encrypted 
documents with access to the documents being enabled through a global 
5 computer network using conventional network browser software having 
encryption capability or from a private network or intranet. For example, 
Microsoft Corporation Internet Explorer 4.0 having 128 bit encryption 
capability can be used to access the data storage facility. Any receiver can 
download a document to which he/she has access, make modifications as 

10 desired using conventional word processors and upload modified 
documents with comments to the storage facility using encrypted 
transmissions Further, the invention includes active notification to 
intended document recipients of the presence of a document at the secure 
storage facility for their review. The present invention also provides for 

15 integrating an intranet server to a secure server at the storage facility 
such that a user can utilize an ordinary e-mail program to send and 
receive documents. For example, a Lotus Notes user can use Lotus Notes 
to send documents outside his intranet in essentially the same manner as 
used for sending documents within the intranet. 

20 Software resident at the secure server automatically issues respective 
notification messages from the server to the selected receiver computers, 
each respective one of the notification messages indicating that documents 
are available in the server for their respective retrieval over the network. 
The selected receiver computers can access and retrieve documents 

25 resident at the server. During the access process, the server interfaces 
with the receiving computer to establish a secure data transmission 
process. Preferably, the communication process uses 128 bit encryption 
but can default to a lower encryption. 
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The present invention further fulfills the foregoing needs by 
providing a computer communication system for notifying a 
plurality of receiving computers generally operated by unrelated 
business organizations of receipt by a predetermined host server of 
5 respective electronic documents from a sender computer. The 
respective documents may be retrieved by each respective receiving 
computer over a global communications network. The sender 
computer and the receiving computers are registered in the host 
server and are interconnectable to the host server through the 

10 global communications network (the "Internet"). The computer 
communication system may include software code or modules that 
allow for selecting one or more of the plurality of receiver computers 
to which the respective documents to be retrieved over the global 
communications network are addressed . A notification module 

15 allows for issuing a respective notification message from the 
predetermined server to the selected receiver computers. Each 
respective notification message indicates that documents are 
available for their respective retrieval over the global 
communications network. A retrieving module allows for retrieving 

20 the documents by the selected receiver computers over the global 
communications network upon a respective user of the selected 
receiver computers issuing a respective download command signal 
to the server. 

25 BRIEF DESCRIPTION OF THE DRAWINGS 

Fig. 1 is a block diagram showing one exemplary embodiment of a 
communication system in accordance with the present invention; 
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Fig. 2 is a block diagram showing exemplary operational modules of 
a host server that may be used by the communication system shown in 
Fig. 1; and 

Figs. 3-33 are computer screen images showing operation and 
5 features of the invention. 

DETAILED DESCRIPTION OF THE INVENTION 

As suggested above, the present invention can be used for many 
types of communications between different parties that are associating for 

10 a temporary transaction or project, but as competitors or for other reasons 
are not suitable for a permanent communication network (an intranet such 
as a LAN or WAN) as might be used for a single government agency or 
single corporation. Projects involving financial or legal transactions are 
particularly suitable, although not necessarily the only sort of project 

15 appropriate, for the method of the instant invention. Additionally, the 
present invention enables an intranet user to transmit/receive documents 
using an e-mail server to/from a computer connected to the Internet, i.e., 
the system provides an intranet e-mail to Internet browser interface. 
Electronic mail (e-mail) systems for sending messages and documents 

20 between computers connected to the Internet or to an intranet are well 
known. Typically, within an intranet, e-mail is sent to an e-mail server 
which interfaces with an Internet server to allow e-mail to be sent outside 
the intranet. FIG. 1 illustrates in block 10 a simple intranet arrangement 
such as might be used in a Lotus Notes system. Intranet users 12a, 12b 

25 represent Lotus Notes clients connected via cable 14 to an e-mail server 16 
and an Internet server 18, such as a Lotus Domino server. While servers 
16, 18 could be integrated, separation is desirable in order to create a 
firewall between the outside world (the Internet) and the inside world (the 



7 

intranet). The Domino server 18 connects to the Internet 20 using 
conventional protocols which allow it to send and receive messages from 
remote computers 22a, 22b and from other servers 24. 

In the present invention, the server 24 is a secure server which can 
5 only be accessed by authorized computers using an acceptable log-in 
procedure, including user name and password. Server 24 is integrated or 
tightly coupled to the Domino server 18 so that a secure message from 
server 18 is replicated in server 24 using Lotus Domino protocols. 
Similarly, any message being sent via server 24 to server 18 is replicated 

10 in server 18. However, when server 18 and server 24 communicate with 
each other, software operating at server 24 establishes a communication 
session based upon a selected security protocol, such as, for example, 128 
bit encryption of the type currently available using commercial browser 
software such as Internet Explorer or Netscape. Thereafter, the messages 

15 are transmitted between servers 18 and 24 using such secure encryption. 

Whenever a message is received at server 24, the server 24 extracts 
the e-mail address of the intended recipient and creates an e-mail 
notification to the recipient of the existence of the message at the server 
24. The e-mail notification contains the URL for server 24. However, the 

20 recipient cannot access the message unless the recipient is authorized to 
use the system, i.e., the recipient must be a registered user and have an 
assigned password to access the message, or the "mailbox" or other 
repository at the server 24 where messages are stored. If the intended 
recipient is granted access to the server 24, the recipient can then locate 

25 the message intended for him/her by browsing through all messages to 
which the recipient has been granted access. 

While the e-mail notification is sent to the intended recipient such 
as computer 22a using standard Internet protocol without encryption, once 
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the computer 22a contacts server 24, the server establishes a secure 
encrypted communication session using a selected encryption protocol. 
The server 24 may deny access if a secure session cannot be established at 
a desired secure level, such as 128 bit encryption. 
5 As described above, the users 12a, 12b operating in their own 

intranet simply use their internal e-mail programs in a conventional 
fashion to send confidential messages/documents over a secure connection. 
If the e-mail system can be used to send Internet messages that do not go 
through the secure server 24 and, for that reason, messages to be sent via 

10 secure server 24 may be designated as secure by adding a designator, such 
as @ secure, to the Internet address or URL. From an external source such 
as users 22a, 22b, secure messages can be transmitted to intranet 10 via 
secure server 24 using a similar type of addressing, i.e., by adding an @ 
secure to the recipient's (user 12a, 12b, etc.) URL. 

15 Another feature of the present invention is the ability to group mail 

services for different clients into separate software structured server 
databases. For example, if intranet 10 represents company A, intranet 
10a may represent company B. Each company uses the same secure server 
24 but each company's e-mail is maintained in separate grouped files 

20 although perhaps in the same hard drive storage media. This feature 
offers the advantage of allowing server 24 to be customized for each 
company. For example, when the external user accesses server 24, the 
server can recognize the user and associate the user with a particular one 
of the companies A and B. Using this recognition, the server 24 can 

25 present a customized browser interface which makes the server 24 look 
like the selected company. To the external user, it thus appears that 
he/she has been connected directly to the company server 18 rather than 



the server 24. This feature is exemplified by database blocks 25, 26, 27 
and 28 in server 24. 

Systems for electronic document delivery are known in the art as 
shown by U.S. patent No. 5,790,790 issued August 4, 1998, which patent 
5 also discloses sending of e-mail notification of the presence of a document 
at a server. However, it is not believed that the prior art discloses a tightly 
coupled relationship as described above with regard to the use of the Lotus 
Domino server 18, a feature which allows an e-mail user to send 
documents using a conventional intranet e-mail program such that the 

10 Internet connection is substantially transparent to the e-mail user. 
Further, it is not believed that prior art systems provide customization of a 
remote server for each of a plurality of different users such that an 
external user accessing the remote server appears to be connected to an 
internal client server. 

15 Fig. 2 shows further details in connection with the server software 

which may be readily incorporated in host server 24. For example, a 
distribution module 30 allows host server 24 to electronically distribute 
messages and documents using secure communications among the users. 
A usage module 32 allows host server 24 to monitor the usage of the 

20 network to permit the users to be billed for the network service. Server 24 
can set up and manage a plurality of separate virtual networks 
concurrently, with each such virtual network representing a different 
intranet client such as company A and company B. 

Host server 24 can offer a high level of security for all documents and 
25 information by employing substantially secure Internet connections, and 
by means of security and encryption technologies developed for intranets 
such as may be readily incorporated in an encryption module 34. 
Additionally, host server 24 provides highly secure access control by way of 
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a user authorization module 36 which allows only authorized personnel to 
access individual messages and related documents and communications. 

Host server 24 can give each client user 10, 10a the ability to 
electronically link or be interconnected via link module 38 with any 
5 number of other users. Although documents may be preferably formatted 
in a Portable Document Format (PDF), such as may be readily 
implemented with a commercially available document exchange programs 
such as an Adobe Acrobat program and the like, other formats could be 
optionally accommodated using a suitable format conversion module 40. A 

10 multimedia module 42 may also be used to process any data into a format 
suitable for presentation to the user in forms other than text such as 
audio, still or moving images, and the like. Further, a notarization module 
44 may be provided to electronically certify any electronic document 
forwarded to the users. Notarization module 44 may incorporate electronic 

15 signature technology owned and developed by Bell Labs and made 
commercially available through their sales organization. Frequently 
Asked Questions (FAQs) or HELP module 46, may conveniently allow 
authorized users to electronically create, post, and edit an electronic board 
containing FAQs. A network service company module 48 may conveniently 

20 be used to display various data in connection with the network service 
company such as additional services that may be available by the network 
service company to the users. The above modules work jointly with e-mail 
module 50 and interface module 52 to send e-mail notices of messages and 
interface with users through either an e-mail server or an Internet browser 

25 to securely pass documents. 

It will be appreciated that the external users such as 22a, 22b may 
conveniently use commercially available Internet software browser 
utilities such as the "Netscape Navigator" or "Microsoft Internet Explorer" 
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to access messages and documents at server 24 since the server is 
presently designed for compatibility with such Internet browsers. Server 
24 includes a plug-in and secure socket layer ("SSL") for additional 
security. 

5 As will be appreciated by those skilled in the art, the browser 

software and plug ins in the external user computers may conveniently 
provide the following functions: 

Access 

10 • Access to the host server 24 site through the subscribers existing 
Internet connection and Internet browser software, or through a suitable 
client software, such as "Lotus Notes" client software; 

• Automated response to security and password inquiries; 

15 Activation 

• Prompt the user to enter a password and any other input required 
for verification, such as a digital signature or key encryption codes; 

• Automatically send the password and other information to the host 
server site; 

20 • Log the user into the host server site and the relevant authorized 
databases once verification of the password is successfully completed; 

Security 

• Provide access security for both "Notes" and Internet browser clients 
25 using advanced security procedures; 

• Provide transmission security for both "Notes" and Internet browser 
clients including encryption/decoding of transmitted files; 

• Require frequent subscription renewal to restrict subscriber access 
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to short intervals such as monthly intervals; 
Viewing 

• For Internet browser clients, permit viewing of Standard 
5 Generalized Markup Language (SGML) pages, such as Hyper Text 

Markup Language (HTML) pages and play back of multimedia elements; 

• For "Notes" groupware clients, permit viewing of "Notes" pages and 
play back of multimedia elements; 

• Permit viewing of coded, multimedia information by authorized 
10 users only; 

• Permit viewing of related documents and files of e-mail Messages 
and attachments, and v-mail communications by authorized users only; 

Communications 
15 • Transmit and receive e-mail; 

• Receive and play back video-mail communications; 

A wide range of communication-link services and options are 
presently available to businesses. Many of these services are available 
20 almost ubiquitously throughout the United States. The communication 
link services generally vary in cost depending on bandwidth, distance 
between nodes, traffic, and other factors. Some common types of 
communication links today are: 

modem, with a maximum bandwidth of 56.6 Kbps or so, 
25 - Integrated Services Digital Network (ISDN), with maximum 

bandwidths of 64 Kbps and 128 Kbps , 

T-l, with a maximum bandwidth of 1.544 Mbps or so, 
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Cable Modem, with a maximum bandwidth exceeding 30 

Mbps. 

Future improvements in high speeds communication links and 
5 modems can be expected to further improve performance of the present 
invention. 

ISDN and T-l connections are substantially dedicated 
communication links and would enable the server 24 to link directly to 
company intranets 10, 10a. On the other hand, dial-up communications 

10 utilizing the public switched telephone network (PSTN) is available 
although the communications speed over the public switched telephone 
network is slow relative to the ISDN and T-l connections, especially for 
multimedia information. There are other high-bandwidth links available 
as well from a variety of carriers and Internet access providers. 

15 FIGS. 3-33 shows a sequence of computer screens illustrating 

operation of the invention from a user computer. It will be seen from the 
screen shots that the company user views a workspace in a Lotus Notes 
environment although the system is implemented similarly for interfacing 
with a Microsoft Outlook e-mail system. FIGS. 3 and 4 show standard 

20 opening screens for Lotus Notes in which the invention has been added. 
For purposes of description, the inventive system is referred to as e-Xpress. 
On FIG. 3, the user clicks the mail button which opens FIG. 4 from which 
the user selects what is desired to be viewed. FIG. 5 illustrates creation of 
an e-mail with attachment. 

25 The normal CC and BCC work the same as any other e-mail. Group 

names can be entered and all the standard e-mail things normally done. 
The only real difference in routing is making sure that any recipients that 
need to receive the message/attachments securely have @ security at the 
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end of their Internet address. You might do this the same way for 
Microsoft exchange or other e-mail systems. This approach is one 
approach and this requires no customization to the client workstation. 
There are other approaches that could be used in an e-mail scenario where 
5 the mail template at FIG. 5 could be changed such that you might have a 
confidential check box or you might have a check box that says secure, or 
you might have a button or something that would tell you that this 
document is going to be different, and by hitting that button or checking off 
that check box, it will tell that mail environment to route this particular 

10 mail message through the interlink service. 

The user completes the e-mail form and clicks on send. The next 
screen, FIG. 6, is just showing that that document is now retained at the 
user's request if they decide to save it also in their sent box. So, it is just 
like the normal e-mail. The next screen, FIG. 7, is just Rich Jenkins as the 

15 recipient of e-mail looking at his inbox. Now Rich doesn't use Notes mail 
but uses a web mail solution. It doesn't matter because when Rich opens 
up his mailbox, the first thing that he would have received when he first 
got enabled to the service would be a welcome document which has his 
user id in it and another document which has his password in it. FIG. 8 

20 adds an additional document which is a notification to Rich that he has a 
document to go pick up at the secure server. When Rich clicks on that 
notification message, it opens to a customizable notification that says he 
has a delivery at a URL, FIG. 9. Click on the URL and go pick it up. 
When Rick clicks on the URL, he sees FIG. 10 and gets prompted with an 

25 authentication box that allows you to authenticate with the secure site. 
The next screen, FIG. 11, is Rich's inbox and the service showing the 
document that was sent to him by John Rockefeller from John's Lotus 
Notes mail box. Rich could then click on that document which opens the 
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document as shown in FIG. 12 allowing Rich to do all the normal functions 
such as detach the attachments and print it. FIG. 13 just shows that 
there's a respond button and a close button on the right hand side there so 
that Rich can click on the respond button in FIG. 13 and it would bring up 
5 the dialog box of FIG. 14. Rich can fill out this form, add some 
attachments, comments, whatever, and click the send button and that 
message would then get processed back through the secure server. And 
now we see what John gets on the other end, FIG. 15. So we're back to 
John's Notes desktop. John gets a message saying "you have new mail". 

10 So again, we saw that John was able to originate a secure document from 
within his Notes mailbox and a response to that document from someone 
using a browser found its way back through the secure service into John's 
native Notes mail environment. When John clicks on his icon again in 
FIG. 15, he opens FIG. 16, sees that there is a new document from Rich 

15 Jenkins, clicks on that document to see the document, FIG. 17. To 
reiterate, when Rich hits the send button, it gets sent using SSL browser 
encryption right into the secure service and from there it is encrypted all 
the way back to John Rockefeller's company, Global Bank, and gets routed 
through Global Bank's intranet, right to John Rockefeller's e-mail box. 

20 The only things that goes in clear text is the notification of FIG. 8. 
Everything else, sending documents, sending responses to those 
documents, is all sent encrypted. When John initially sent this document 
to Rich, what Rich got was a notification that says go to this website and 
you can get this document. When the response came back, it just came 

25 back as an e-mail directly to John. From the moment the message left 
Rich's desktop, to the moment it arrived on John's, that response was 
totally encrypted and was processed through the secure service. The only 
thing that went normal Internet e-mail path, or the only thing that goes 
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normal Internet e-mail path is the notification messages. The response is 
not a notification message so it follows the secure path. The system takes 
the message that Rich saves and places it on the secure server. The server 
takes that document, instead of just sending out a notification, converts it 
5 and makes sure it follows the right secure path back into John's Notes 
mail infrastraucture. If Rich gets the document and wants to make some 
changes in the document, and then sends the document back to John, Rich 
would have to open the document, click on the attachment, detach it, make 
some changes to it and save a new version onto the hard drive. In order to 

10 return the secure document to John, Rich goes to the secure server, opens 
the original document, hits the respond button, fills out some comments, 
adds the new attachment and hits the send button. That document is 
going to then travel through the secure service to John's e-mail server. So 
what John would get, regarding this whole transaction is his original 

15 outbound message and now he has a new inbound message showing up 
right in his inbox. There are two different things happening. The first 
time mail was sent, the document goes to the secure server which notifies 
Rich that he has a document there. But when Rich responds, it appears 
that the document no longer goes to that secure site, but that it now goes 

20 directly back to John. Actually, the document goes to both the secure 
server and to John. When Rich is posting it to the secure site, the server 
processes the document to make sure it gets back into John's inbox. 
However, John could, if he wanted to, log into the site with his browser 
and can see that the document is there. So, it is now in both places. 

25 Referring to FIG. 18, there is another icon on John's desktop called 

IntraLinks Demo. If John double clicks on that icon, it would go to FIG. 19 
which allows John to do three different things. Check the access log or, in 
other words, be able to go in and look at who has opened a document he 
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has sent and who has not. Request new users that he can interact with or 
view all the users he currently can interact with. It will show the default 
view as access log will list all the documents that John has sent out that 
haven't expired yet and John could then just click on that first document, 
5 go to FIG. 20, open up that document and see who he sent it to, when he 
sent it, see the package access log, see who has opened it, who has not, and 
see the original attachment. All of this is done from within the Notes or 
other e-mail environment. John never has to use his browser to interact 
with the service if he doesn't want to. But everything that John is 

10 experiencing here in Notes, he could also do with his browser. All the 
people outside the enterprise, outside the Global Bank in this example, 
will use their browser. 

Back in FIG. 19, if you click on "user request", it brings you to FIG. 
21. Since there are no pending user requests, the screen is blank. If you 

15 wanted to request a new user, click on the "request user" button to open 
FIG. 22 which allows addition of users. Once a request is made, it resides 
in the system for an administrator to process. The administrator would 
see FIG. 23 request Bill Conklin. The administrator could click on Bill's 
name, go to FIG. 24, see what was requested, make any necessary editing 

20 changes, and then click the activate user button. In FIG. 25, the person is 
now listed as active and is assigned a user id number. They could then 
add this person to a group by clicking the add to group button, which 
would bring them to FIG. 26. FIG. 27 comes up when "activation log" is 
checked in FIG. 24 to see who was activated, when they were activated and 

25 processed through the server 24 for access. FIG. 28 is a list of assigned 
recipients which shows how to allow people to send documents between 
each other. When you bring a user on the system, three things have to 
happen. You have to register a user, and make the user known to the 
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system, but at that point, they can't talk to anybody and nobody can talk to 
them. Now the user must be assigned. If one double clicks on John 
Rockefeller in FIG. 28, FIG. 29 appears. The top box lists all of the people 
in the system that John is not yet assigned to and in the bottom left would 
5 be those people who John is assigned to. To assign someone, check off the 
person in the top box, check off add recipient, click the update button and 
you get FIG. 30 showing Bill Conklin in the authorized block of recipients 
that John can see. You then go through the same thing in reverse for Bill, 
FIG. 31. Bring up Bill's profile, check off John Rockefeller and recipient, 

10 click the update button and now brings you to FIG. 32. Bill can now see 
John and they can send things to each other. FIG. 33 is a system activity 
slide in Notes which shows the first time people have logged in and the last 
time they logged in. So the intent here is to allow the sponsor organization 
of the service to stay within their native environment, Lotus Notes or other 

15 groupware, and be able to send and receive secure documents from outside 
the organization. 

The function described in the illustrative Notes environment will be 
recognized as transferrable to other groupware systems. Further, the 
implementation of the invention using conventional e-mail and Internet 

20 browser systems will be apparent from the description. However, for 
purposes of a complete description, reference is also made to the e-Xpress 
User Manual, Version 1.0, attached hereto as an Appendix, the disclosure 
of which is hereby incorporated by reference. 

While the invention has been described in what is presently 

25 considered to be a preferred embodiment, many variations and 
modifications will become apparent to those skilled in the art. 
Accordingly, it is intended that the invention not be limited to the 
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specific illustrative embodiment but be interpreted within the full 
spirit and scope of the appended claims. 
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CLAIMS 

1. A method operable in a Lotus Notes environment for 
sending, receiving and managing voluminous confidential 
documents for review by a plurality of parties and for notifying 
selected ones of a plurality of receiving computers generally 
5 operated by unrelated business organizations of receipt by a 
predetermined host server of such electronic documents from a 
sender computer for review, wherein the documents are reviewable 
by each respective receiving computer over a global communications 
network, the sender computer and the receiving computers each 
10 being registered in the host server , the method comprising the steps 
of: 

selecting one or more of the plurality of receiver computers to 
which selected documents are to be reviewed over the global 
communications network are addressed; 
15 transferring the respective documents from a Lotus Notes 

client to a first database in a local Lotus Domino server; 

establishing a communication link between the local Lotus 
Domino server and the predetermined host server via the G.C.N.; 

authenticating identify of the local L.D. server and the host 
20 server to enable encrypted data transmission; 

replicating the documents stored in the first database in a 
second database that is local relative to the predetermined host 
server; 

issuing a respective notification message from the 
25 predetermined host server to the selected receiver computers, each 
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respective notification message indicating replicated documents 

available in the second database for their respective retrieval over 

the global communications network; 

retrieving the replicated documents in the second database by 
30 the selected receiver computers over the global communications 

network upon a respective user of the selected receiver computers 

issuing a respective download command signal to the predetermined 

host server; and 

allowing the receiver computers to respond to the sender 
35 computers through the predetermined host server to the Lotus 

Domino server and the Lotus Notes client. 

2. The method of claim 1 wherein the selecting step 
comprises adding a predetermined security designation after a 
respective E-mail address of each receiving computer. 

3. The method of claim 2 wherein the replicating step 
comprises replicating at predetermined time intervals documents 
stored in the first database into the second database. 

4. The method of claim 3 wherein the predetermined time 
interval for replicating is chosen sufficiently short to insure 
substantially timely notification of arrival of new documents to the 
receiver computers and sufficiently long relative to the size and 

5 number of documents to be replicated. 

5. The method of claim 4 wherein the notification 
message includes data indicative of new documents replicated into 
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the second database over the last interval of replication. 

6. The method of claim 1 wherein the issuing step further 
comprises issuing a message report to the sender computer and/or a 
server manager of the host server wherein the message report 
includes data indicative of whether a document has been retrieved 

5 by any given receiving computer. 

7. The method of claim 6 wherein the notification 
message and the message reports are transmitted over the Internet. 

8. A computer communications system for notifying a 
plurality of receiving computers generally operated by unrelated 
business organizations of receipt by a predetermined host server of 
respective electronic documents from a sender computer, the 

5 respective documents to be retrieved by each respective receiving 
computer over a global communications network, the sender 
computer and the receiving computers being registered in the host 
server and each being interconnectable to the host server through 
the global communications network, the computer communication 
10 system comprising: 

means for designating one or more of the plurality of receiver 
computers to which the respective documents to be retrieved over 
the global communications network are addressed; 

means for establishing a secure communication protocol 
15 between the sender computer and the host server and for using the 
secure protocol for transmitting the documents to the host server; 
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means for storing the respective documents in a database that 
is local relative to the host server; 

means for issuing a respective notification message from the 
20 host server to each designated receiver computer, each respective 
notification message indicating documents available in the database 
for their respective retrieval over the global communications 
network; 

means for establishing another secure communications 
25 protocol between the host server and each receiver computer; and 

means for retrieving the documents in the database by each 
designated receiver computer over the global communications 
network using the another secure protocol upon a respective user of 
each receiver computer issuing a respective download command 
30 signal to the host server. 

9. The system of claim 8 wherein the notification message 
includes data indicative of new documents received in the database 
since the previous message. 

10. The system of claim 8 further comprising means for 
issuing a message report to the sender computer and/or a server 
manager wherein the message report includes data indicative of 
whether a designated receiver computer has retrieved any 

5 document. 



11. The system of claim 10 wherein the notification 
message and the message reports are accessible over the global 
communication network. 
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12. A method for storing, accessing and interchanging 
voluminous confidential documents for review by a plurality of 
parties and for notifying selected ones of a plurality of receiving 
computers generally operated by unrelated business organizations of 
5 receipt by a predetermined host server of such electronic documents 
from a sender computer for review, wherein the documents are 
reviewable by each respective receiving computer over a global 
communications network, the sender computer and the receiving 
computers each being registered in the host server , the method 
10 comprising the steps of: 

selecting one or more of the plurality of receiver computers to 
which selected documents are to be reviewed over the global 
communications network are addressed; 

storing the respective documents in a first database that is 
15 local relative to the sender computer; 

replicating the documents stored in the first database in a 
second database that is local relative to the predetermined server; 

issuing a respective notification message from the 
predetermined server to the selected receiver computers, each 
20 respective notification message indicating replicated documents 
available in the second database for their respective retrieval over 
the global communications network; and 

retrieving the replicated documents in the second database by 
the selected receiver computers over the global communications 
25 network upon a respective user of the selected receiver computers 
issuing a respective download command signal to the predetermined 
server. 
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ABSTRACT OF THE DISCLOSURE 

A method and system for sending, receiving and managing 
the exchange of messages between an intranet and multiple 
external users using a secure server as an intermediary interface for 
Internet communications. In one form, the secure server operates in 
5 a replication mode with a Lotus Domino server wherein secure 
transmissions are designated by an @secure URL. In another form, 
secure transmissions are implemented by establishing a secure 
connection to the secure server using a browser addressing the 
server URL. The server operating system interfaces with the 

10 intranet so that the intranet user can use standard group ware, such 
as Lotus Notes, to create, send and receive secure documents. 
External users are notified by normal e-mail of the presence of 
secure documents at the server and must connect to the server in a 
secure mode to retrieve documents. Responses to documents are 

15 automatically returned to the sender's e-mail server using secure 
transmission. 
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